Page 1 of 2 12 LastLast
Results 1 to 10 of 13

Thread: Pointsec® for PC

  1. #1
    I'd rather be fishing DjM's Avatar
    Join Date
    Aug 2001
    Location
    The Great White North
    Posts
    1,867

    Pointsec® for PC

    I am wondering if anyone here has used or even heard of a product called Pointsec® for PC . I met with the sales guys a few months ago and got the "our system is unbreakable" story. Whenever I hear those words I tend to tune out for the rest of the meeting. Anyways, My CIO is invoking the 'Golden Rule' (he who has the gold makes the rules), and has asked me to bring in a copy and test it out.

    Pointsec's award winning enterprise security product, Pointsec® for PC, ensures that the intellectual property stored on your laptops and desktops remains private and secure.
    If anyone has got any experience or comments about the product, I'd sure like to hear it.

    Thanks
    Cheers:
    DjM

  2. #2
    Regal Making Handler
    Join Date
    Jun 2002
    Posts
    1,668
    DjM,
    Nothing but questions from me.

    Has EFS been cracked............(anytime soon)

    Does the product do some stuff you can na t do within wiindowzy??
    What happens if a big asteroid hits the Earth? Judging from realistic simulations involving a sledge hammer and a common laboratory frog, we can assume it will be pretty bad. - Dave Barry

  3. #3
    I'd rather be fishing DjM's Avatar
    Join Date
    Aug 2001
    Location
    The Great White North
    Posts
    1,867
    Originally posted here by jinxy
    DjM,
    Nothing but questions from me.

    Has EFS been cracked............(anytime soon)

    Does the product do some stuff you can na t do within wiindowzy??
    Hey jinxy.

    Can't answer the EFS question, I don't know.

    As for the product, their claim is the whole is protected and the protection kicks in prior to the boot sequence, therefore taking the OS and all the data out of the picture.

    Not sure if that answers your question or not.

    Cheers:
    DjM

  4. #4
    Regal Making Handler
    Join Date
    Jun 2002
    Posts
    1,668
    Well perhaps, before your company spends some money on a product, it maybe in there interest to see what can be achieved within what they have already paid for??
    What happens if a big asteroid hits the Earth? Judging from realistic simulations involving a sledge hammer and a common laboratory frog, we can assume it will be pretty bad. - Dave Barry

  5. #5
    I'd rather be fishing DjM's Avatar
    Join Date
    Aug 2001
    Location
    The Great White North
    Posts
    1,867
    Originally posted here by jinxy
    Well perhaps, before your company spends some money on a product, it maybe in there interest to see what can be achieved within what they have already paid for??
    I don't disagree with you jinxy, however, like I said:

    The CIO is invoking the 'Golden Rule' (he who has the gold makes the rules), and has asked me to bring in a copy and test it out.
    This guy signs the cheques, therefore if he wants me to check something out, it's in my best (career) interests to do just that. That's why I am here asking, I was/am hoping someone here has had some contact with the company and some exposure to the product.

    Cheers:
    DjM

  6. #6
    My organisation uses it on our notebook fleet to encrypt the contents of a hard drive so that if the notebook is stolen then the data is not accessible.

    Personally we have not had a problem with the security of the product at all and we have found it quite good. I am not involved with deploying or managing it so I can't comment on that side. I have deployed Pointsec ME (Pointsec Media Encrytion) which is another product worth a look from Pointsec and aside from a couple of early hiccups it was fine.

    From a security perspective this product has been certified under the common criteria project to EAL 4 level which I guess isn't too bad depending on the classification of data.

    See this page under the Data Protection category
    http://www.commoncriteriaportal.org/...owcatagories=0

  7. #7

  8. #8
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    Hmmm,

    I have never used the product but it does seem rather "snakeoilish" in its promotional statement. If you are keeping seriously sensitive/valuable "intellectual property" on desktops and laptops you don't need Pointsec, you need to take a long hard look at your security model.

    You should NOT have anything sensitive on a laptop............won't anybody learn from the Department of Veteran's Affairs, Japan's DoD and British MI5?

    The first move has to be a risk assessment exercise?...............like exactly what are you trying to protect, how desirable is it, and to whom, how valuable is it, how marketable is it and so on.......................

    You don't say, but I would imagine that you are mainly looking to secure laptops?

    I must say that my approach is to lean towards layered security:

    1. Power up password on an EEPROM chip.
    2. Operating System Password.
    3. Hard Drive Password (very difficult to circumvent).
    4. Drive encryption.
    5. Network logon password.
    6. Windows network/user security........particularly access and authority.

    The real question is exactly what have you got worth stealing, and what would stop a determined individual/organisation from either infiltrating you or bribing/coercing an employee?

    Just a few thoughts

  9. #9
    AO Senior Cow-beller
    Moderator
    zencoder's Avatar
    Join Date
    Dec 2004
    Location
    Mountain standard tribe.
    Posts
    1,177

    Talking

    Quote Originally Posted by nihil
    Hmmm,

    I have never used the product but it does seem rather "snakeoilish" in its promotional statement. If you are keeping seriously sensitive/valuable "intellectual property" on desktops and laptops you don't need Pointsec, you need to take a long hard look at your security model.

    You should NOT have anything sensitive on a laptop............won't anybody learn from the Department of Veteran's Affairs, Japan's DoD and British MI5?
    Oh come now! How dare you suggest they do things PROPERLY!

    Hey Jonn-o, long time no see.

    I've heard of Pointsec and seen it compared to several other whole-drive/removable-device/all-encompasing enterprise protection/encryption schemes (how appropriate, the word "scheme").

    These vendors sell a "silver bullet solution" to these problems, when the problem/opportunity/solution is actually founded in user behavior and corporate/agency policy. Unfortunately (or fortunately, depending on which vendor you are), the way things have gone with the data disclosures and devices thefts in the last 18 months, it's probably better to consider a laptop as a simple thin-client front end for initiating the VPN tunnel into the protected fortress. It's a simple fact that if your data walks out the door (in any format), your odd's of being splashed on the main page of BBC or CNN just rose drastically.

    So this may make your manager happy, but I doubt it will actually improve your security posture significantly. If you build it, they will come (and break it). "They" being your users. "Every day, man is making bigger and better fool-proof things, and every day, nature is making bigger and better fools." -- Albert Einstein

    Anything that leaves the logio-physical perimeter of your (organizations) direct technical control is at higher risk of theft, accidental loss, and potential disclosure, and no amount of fancy software, hardware, schemas, and sales hullubaloo is going to change that.

    And with that, I'm gone for another 3 months! Haha, no, I'll try to hang around more.
    "Data is not necessarily information. Information does not necessarily lead to knowledge. And knowledge is not always sufficient to discover truth and breed wisdom." --Spaf
    Anyone who is capable of getting themselves made president should on no account be allowed to do the job. --Douglas Adams (1952-2001)
    "...people find it far easier to forgive others for being wrong than being right." - Albus Percival Wulfric Brian Dumbledore

  10. #10
    I'd rather be fishing DjM's Avatar
    Join Date
    Aug 2001
    Location
    The Great White North
    Posts
    1,867
    Quote Originally Posted by zencoder
    Oh come now! How dare you suggest they do things PROPERLY!

    Hey Jonn-o, long time no see.

    I've heard of Pointsec and seen it compared to several other whole-drive/removable-device/all-encompasing enterprise protection/encryption schemes (how appropriate, the word "scheme").

    These vendors sell a "silver bullet solution" to these problems, when the problem/opportunity/solution is actually founded in user behavior and corporate/agency policy. Unfortunately (or fortunately, depending on which vendor you are), the way things have gone with the data disclosures and devices thefts in the last 18 months, it's probably better to consider a laptop as a simple thin-client front end for initiating the VPN tunnel into the protected fortress. It's a simple fact that if your data walks out the door (in any format), your odd's of being splashed on the main page of BBC or CNN just rose drastically.

    So this may make your manager happy, but I doubt it will actually improve your security posture significantly. If you build it, they will come (and break it). "They" being your users. "Every day, man is making bigger and better fool-proof things, and every day, nature is making bigger and better fools." -- Albert Einstein

    Anything that leaves the logio-physical perimeter of your (organizations) direct technical control is at higher risk of theft, accidental loss, and potential disclosure, and no amount of fancy software, hardware, schemas, and sales hullubaloo is going to change that.

    And with that, I'm gone for another 3 months! Haha, no, I'll try to hang around more.
    Thanks for the input Zen and nihil, I don't disagree with either of you. Sometimes there is just not a technical solution to a management problem. That said, I am getting more and more pressure as the data theft cases hit the head lines. At this point if they want to spend the money (it ain't cheap) I'll figure some way to implement it.

    Cheers:
    DjM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •